1 / 6

Fine-Grained Isolation for the Apache Web Server

Fine-Grained Isolation for the Apache Web Server. Andrea Bittau Mark Handley Petr Marchenko Brad Karp Computer Science department UCL. Motivation & Problem Definition. Apache Web Server. private key. parser. network. Motivation & Problem Definition. Apache Web Server.

tiger
Download Presentation

Fine-Grained Isolation for the Apache Web Server

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Fine-Grained Isolation for the Apache Web Server Andrea Bittau Mark Handley PetrMarchenko Brad Karp Computer Science department UCL

  2. Motivation & Problem Definition Apache Web Server private key parser network

  3. Motivation & Problem Definition Apache Web Server memoryprotection memoryprotection private key parser network

  4. Is partitioning easy? Apache Web Server memoryprotection memoryprotection private key parser network Apache worker process requires access to222 heap and 389 global objects

  5. Problem Statement Given a function, what memory does it access? Given memory items, which functions access them? Given a function that “generates” sensitive data, where does it propagate? Crowbar, our binary instrumentation tool, answers these questions

  6. SSL-enabled Apache Web Server Apache Web Server memoryprotection memoryprotection network private key gen_session_key (~200 LoC) worker

More Related